mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
1.0 KiB
1.0 KiB
CVE-2014-4345
Description
Off-by-one error in the krb5_encode_krbsecretkey function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) 1.6.x through 1.11.x before 1.11.6 and 1.12.x before 1.12.2 allows remote authenticated users to cause a denial of service (buffer overflow) or possibly execute arbitrary code via a series of "cpw -keepold" commands.
POC
Reference
- http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2014-001.txt
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
dc7ed55c68
Github
No PoCs found on GitHub currently.